NEW PRESS RELEASE: SOD Awarded $2.2 M Grant to Futher Develop AQ Technology | Click Here
State and Local Government and Education

Protect your systems and optimize your budget with ThreatWatch services


In today’s “new normal” delivering online services and optimizing your security budget is critical. ThreatWatch can reduce malware dwell time, shorten the time between discovery and a data breach, while staying within the bounds of your security budget.

Shortening that cycle can make all the difference.  Potentially spending just a few hours of remediation compared to the chaos of having your systems down for weeks or data stolen due to a full-on compromise.


Proactive Threat Hunting requires toolsets and technology beyond what normal Security Operations maintain to perform their day-to-day threat monitoring and triage activities.

  • Reduce false positives
  • Enhance detection accuracy
  • Speed positive threat confirmation
  • Accelerate response


ThreatWatch® Hunt integrates hunting toolsets and methods with Security On-Demand’s proprietary correlation and behavioral analysis capabilities, such as machine learning-based artificial intelligence and supervised learning models that use behavioral analysis of attack patterns.  As part of the service, SOD will:

  • Correlate such activity with logs, alerts, and other information received

  • Monitor the alerts, logs, and output provided by the advanced threat hunting activities

  • Validate the threat as part of the triage and investigation process

  • Tune and provide continual feedback to ensure that normal system behavior is baselined

Once an alert for a potential threat is received, the data is correlated with other security information and then our SOC team will respond to further triage and investigate the suspicious activity.
The ThreatWatch Hunt service conducts periodic scheduled scans of network devices.  Implants and threats discovered during a sweep initiate an alert to the ATLAS Analytics Platform. 

Companies that identified a breach in less than 100 days saved more than $1 million as compared to those that took more than 100 days. Similarly, companies that contained a breach in less than 30 days saved over $1 million as compared to those that took more than 30 days to resolve. (IBM 2018 Cost of Data Breach study)